Overview

overview

10

Static

static

10

divar.apk

android-9-x86

7

divar.apk

android-10-x64

6

divar.apk

android-11-x64

7

Resubmissions

31-10-2022 16:21

221031-ttnrkaccdp 10

31-08-2022 14:05

220831-rdtlrsfcej 10

Analysis

  • max time kernel
    786033s
  • max time network
    167s
  • platform
    android_x64
  • resource
    android-x64-arm64-20220823-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20220823-enlocale:en-usos:android-11-x64system
  • submitted
    31-10-2022 16:21

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    divar.apk

  • Size

    2.3MB

  • MD5

    9082147d32ce71e3da1469bd9a0cdff9

  • SHA1

    2db449cb6fc44b39f0e38d628c5fe72a056f35fd

  • SHA256

    cd3720fcdfb015b745e1a560ce5f4ed198d5a8afe79c0cf7bdecb7c47e33455e

  • SHA512

    26e536bbfc943e4a71e3dc4201fdd19a54274974171e46902d4d55261267dc2b767bf5da0966e1988488a3d092ce558dd85ebb93adb9d70359eb1df59ad7c25a

  • SSDEEP

    49152:A/Yyeit+zalch6z5Oz2vpqLwR6L2zsq7IlVCxd0qAnibUO74kg:OYyeit+za+2chLU6L19lw0qDUO+

Score
7/10

Malware Config

Signatures

  • Acquires the wake lock. 1 IoCs
  • Reads information about phone network operator.

Processes

  • com.psiphon3
    1⤵
    • Acquires the wake lock.
    PID:4355
    • ping -c 2 -W 10 -v google.com
      2⤵
        PID:4411

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • /data/user/0/com.psiphon3/cache/~test.test
      Filesize

      4B

      MD5

      098f6bcd4621d373cade4e832627b4f6

      SHA1

      a94a8fe5ccb19ba61c4c0873d391e987982fbbd3

      SHA256

      9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

      SHA512

      ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

      Download Submit

    • /data/user/0/com.psiphon3/databases/crash_reports
      Filesize

      152KB

      MD5

      132d14a48c25e6e1759b5357d480b035

      SHA1

      2d6055ccaa27967aaf3feb51040524b0447d15b6

      SHA256

      8f65a6449076430f04684a467ad6a17ab2443276da5b0393011fa8dab252e1ac

      SHA512

      3094545eb986e5a4aac51a7f7eecfbae4f60ae0b7d0ce9db8344dde5b8fa85948566ac763b39e0f802d374ec056430af57533b3f880a9e721030bdd6f76f868a

      Download Submit

    • /data/user/0/com.psiphon3/databases/crash_reports-journal
      Filesize

      1KB

      MD5

      ec359b40b422d3e793139ea2255c5975

      SHA1

      1feb03de6452a6d29ed4d1ebb570bd95975902c7

      SHA256

      426b53b1eed0314c2ab41d4e0c9f197798dfb6a67430021cb4499bfa6095dac4

      SHA512

      e635b5f16edd0f8377acd45442b45fdad55a776ce9a7dd497f82718223fd64077c4de8e505b4e1cf08841da92d8bdf03847dbc73317357a65db0981b591af175

      Download Submit

    • /data/user/0/com.psiphon3/databases/google_app_measurement_local.db
      Filesize

      88KB

      MD5

      dcfd672de42171b8defd3de000d3ecca

      SHA1

      a7ce8e9f371045e2a972dafae7ef05128fb1acfb

      SHA256

      18c8a9f22565ae1787bbd44abf7f647a3b14e8c23347308e538590ad0fc0e775

      SHA512

      f8cfb753b86c3875a43968d2e8eb22bcd3ca7b9ad7feab13e5541be9dc942332a8d87d1df479be8f3b1340525235eed0b2e81bb7f98426781ceea0c4eff4e389

      Download Submit

    • /data/user/0/com.psiphon3/databases/google_app_measurement_local.db-journal
      Filesize

      1KB

      MD5

      0f6cd5d14c6f9f7beae48424970b67ac

      SHA1

      0e60530897bd45d8256afc98907421bfb6e11b77

      SHA256

      4ddd51f269992db4b0186fa2e33314de2d8abfba670c7dde9f453eaa9868cba8

      SHA512

      b3c1b8807659a8225a1d01c027e644f4aac9c4edf1bfb0e45fea773dad40c695739c4e70238285329e57d0a4608c269aaedea38d07887bf539703aa15c6f5374

      Download Submit

    • /data/user/0/com.psiphon3/files/firebase_inter_process_mutex-lock_send_report_to_server.lock
      MD5

      d41d8cd98f00b204e9800998ecf8427e

      SHA1

      da39a3ee5e6b4b0d3255bfef95601890afd80709

      SHA256

      e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

      SHA512

      cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

      Download Submit

    • /data/user/0/com.psiphon3/files/firebase_inter_process_mutex-lock_write_report_to_sqlite.lock
      MD5

      d41d8cd98f00b204e9800998ecf8427e

      SHA1

      da39a3ee5e6b4b0d3255bfef95601890afd80709

      SHA256

      e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

      SHA512

      cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

      Download Submit

    • /data/user/0/com.psiphon3/no_backup/com.google.android.gms.appid-no-backup
      MD5

      d41d8cd98f00b204e9800998ecf8427e

      SHA1

      da39a3ee5e6b4b0d3255bfef95601890afd80709

      SHA256

      e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

      SHA512

      cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

      Download Submit

    • /data/user/0/com.psiphon3/shared_prefs/com.google.android.gms.appid.xml
      Filesize

      2KB

      MD5

      78b4d6d452d8c69e01134faaea134102

      SHA1

      68f2c0758f821f1e0e7f67ced2c773f2a93ad65a

      SHA256

      6b7a3ef384a1d1ff7758fa18a75fc2cd716b1c664f90b93114c53db96175bd8a

      SHA512

      9340706a67c91fa720bac0f703d8d41bab93f5e4438ef2f9e5d468b60f5e2d4ac686a0a6418668e4b547093c721fd4a6f64be3465081303f616f81958e6c3fb1

      Download Submit

    • /data/user/0/com.psiphon3/shared_prefs/com.google.android.gms.appid.xml
      Filesize

      2KB

      MD5

      42ab4dac8eec0ae1a1f15d610b76d72a

      SHA1

      6ba2b61b6826a02805763dccd0535cd4c7fec686

      SHA256

      08940c546b7e1a5e3546ef3b0036f8088be2e72f27d0e4682a270b659a1b36dc

      SHA512

      b54632c7b31b7bf8823a41b8e81e6d45c7c56deaa4fa0dc2c4b216c50c80ff05b731cffb95537055aa59b6e6222a4cb321c2f0f2b0450b517da5baced9cf450c

      Download Submit

    • /data/user/0/com.psiphon3/shared_prefs/com.google.android.gms.appid.xml
      Filesize

      2KB

      MD5

      8693dc5a56e202cb5a966b41bd19a901

      SHA1

      c02a224862f58f223110b81b713c0b0ac74d9e46

      SHA256

      2457d0de55045c41a7107f0321dab6ba96c9fffe1d952e9bc8494a1d32504c64

      SHA512

      bd1ce6883e98861d1d0a9aaa9e46b40a4e150dcef696372b8c6bdfc4daf98d55563023a5fc294880a0caef180706172eab00dba7bca87453cd2f935c9f57ecd9

      Download Submit

    • /data/user/0/com.psiphon3/shared_prefs/com.google.android.gms.appid.xml
      Filesize

      2KB

      MD5

      61cc5f8ce280936d3a3bfd55d5948b88

      SHA1

      1659f29ef2d2c457cf05e56fd1b93359aa9c8369

      SHA256

      569019e56e972a9ae69dcd8afc667f7a88a533f3f9920b287dd98bbf1c85584b

      SHA512

      d43aab586f45c833b3ef4447aa3862e88d28aaa4866b908b7d0a0cdda1973dc54f23673df070d81388c01adf615cb24f7ba10007d67b8270e5a8cf2f9e384a33

      Download Submit

    • /data/user/0/com.psiphon3/shared_prefs/com.google.android.gms.measurement.prefs.xml
      Filesize

      521B

      MD5

      c3d8c27dbb32e119415cdd8b5b8c6ab1

      SHA1

      c2de407aaea20865b24db4f3359141d0f76c4387

      SHA256

      c6b5b5714dd6711b6c40d35b0ac358ebb8e71cf232d380f1b60658bffe847bb2

      SHA512

      ec8782dc7aef1547c22fe4fa80187aca007c27e0152a4add99a2e14b987b2ad353b8d351f11e9901d1810b25f07d785d278fbde11bf72683aaaa13f59009f323

      Download Submit

    • /data/user/0/com.psiphon3/shared_prefs/com.google.android.gms.measurement.prefs.xml
      Filesize

      122B

      MD5

      250b4caeba60ddf53228405750ba66ca

      SHA1

      422ab714feb34e9f3b4f1cbe669887bcd581ddb1

      SHA256

      2478c97a377db9ce6a44977b4864a40af8b4f5e5c8f81892c424a608ddec911e

      SHA512

      373750c29942fef90281109b6025c398d0f4ac62b58a984a3651d09f8c016440bc40f6bd84fb6d40acf8e48a553d4c1d22e01a95c40a41567c079ba9a338afdb

      Download Submit

    • /data/user/0/com.psiphon3/shared_prefs/com.google.android.gms.measurement.prefs.xml
      Filesize

      361B

      MD5

      f81d2b73764aae3b91c893df6345f783

      SHA1

      81096b4cfc8eb9fd4dae0197955945423b620726

      SHA256

      01e6a4d25842c4c6bc6ced889bbb3adac834da9da56323ac70875dc020921100

      SHA512

      3fbf5033e8104613e345bf52b5f9a5dc102c2ffce9e9e2152ad2dcebf4657999c680edc44c026b62537f08ccec8d72d154cbe31850523a36023e13dd2768ed80

      Download Submit

    • /data/user/0/com.psiphon3/shared_prefs/com.google.android.gms.measurement.prefs.xml
      Filesize

      457B

      MD5

      b6bbf3eb13bd7d8689471774851e3273

      SHA1

      67fa46d29e681cfacdf1e9f3acaad257fb7f6485

      SHA256

      3f91cd96dbb687d7f909362befebbef7d36f93260cd37d023153492922133b2f

      SHA512

      4f6fddf02ddecebd1a3562bb73dea437976035b83af9e9d6e8aa83e42f3ccab62bc30bc7cda6014aa8a8388ab24afb41211df1e66350e90e2b2d4f4b3b4e4429

      Download Submit

    • /data/user/0/com.psiphon3/shared_prefs/com.google.android.gms.measurement.prefs.xml
      Filesize

      520B

      MD5

      7cde35835ecefdf2936d12bc58606d64

      SHA1

      61c372b3029c3b33810b0b08aa92a3a6987b4b69

      SHA256

      a050ca8e2f4d9e0290930b7133fcb12c39dcde1e03d987a00a68556060f94e50

      SHA512

      c93645bc7d8fc6361d9b2bf8b11b62e0f221ad1003965be47348640121f03df84a681db9145be8ae44c0034eae4c488ebfbb013a508f5b8c5df9511c2bb352ab

      Download Submit